Excerpt from Computing Article, Published on September 11, 2025
LNER has confirmed a cyber-attack on one of its third-party suppliers led to the exposure of passenger data, including contact information and travel records. The operator has clarified that no financial data such as bank details or passwords were compromised in the incident. Despite this, LNER is treating the breach with utmost priority and working closely with security experts and the supplier to assess the full impact and secure the affected systems.
The railway operator reassured customers that its services and ticketing operations continue to function without disruption. However, passengers have been advised to remain cautious of unsolicited messages that may attempt to extract personal information fraudulently. LNER emphasized maintaining secure passwords to add an extra layer of protection.
This breach highlights a broader trend of cyber incidents targeting supply chains and third-party providers in critical sectors across the UK. Other companies, including transport organizations and major retailers, have faced similar attacks, which emphasize the need for robust security measures beyond an organization’s own infrastructure.
For LNER, a state-owned operator serving millions annually, safeguarding passenger trust in managing personal data is as crucial as ensuring efficient transport services. The company has yet to reveal the identity of the compromised supplier or how long the attackers had access to the data, underscoring ongoing investigations.
To delve deeper into this topic, visit the original Computing article.
